Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/gaGkVG3MEdInn4-8PG0KqYF30JI.roa
File: gaGkVG3MEdInn4-8PG0KqYF30JI.roa (raw, json)
Hash identifier: SfwNO2whAPyH8lm16SnfgUUI860QDXfZxOSECjYDQzw=
Subject key identifier: 81:A1:A4:54:6D:CC:11:D2:27:9F:8F:BC:3C:6D:0A:A9:81:77:D0:92
Certificate issuer: /CN=f6af433974df373b70abd76b13e1c70c775f554b
Certificate serial: 018CCA2A1C9466E4E9EA5DDB16C02B07DA94
Authority key identifier: F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/gaGkVG3MEdInn4-8PG0KqYF30JI.roa
Signing time: Tue 02 Jan 2024 12:33:26 +0000
ROA not before: Tue 02 Jan 2024 12:33:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212685
IP address blocks: 2a12:3e80:401::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/9q9DOXTfNztwq9drE-HHDHdfVUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/9q9DOXTfNztwq9drE-HHDHdfVUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 19:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:1c:94:66:e4:e9:ea:5d:db:16:c0:2b:07:da:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6af433974df373b70abd76b13e1c70c775f554b
Validity
Not Before: Jan 2 12:33:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81a1a4546dcc11d2279f8fbc3c6d0aa98177d092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5e:2c:68:40:65:8c:4e:fc:7b:96:8e:ee:3e:
76:19:a1:64:06:55:ca:dc:24:63:99:45:fc:be:14:
d9:d9:21:51:ce:29:25:a7:37:31:e6:bb:62:a0:e9:
c4:8f:91:29:07:11:b2:b9:f1:43:43:24:f7:01:95:
d0:2f:4d:3c:9e:8a:c5:44:ab:44:f8:3e:0c:db:ac:
81:1d:de:2d:0a:96:a5:ae:60:8b:aa:91:e0:8a:e6:
e6:e3:e2:bc:09:a8:ec:4b:17:b9:64:ae:60:3a:b7:
9a:97:68:43:f7:ea:20:be:a2:ca:2d:9c:cd:4b:ac:
a4:a4:79:7f:46:2a:5c:24:74:b9:e2:f9:b8:bc:86:
f1:34:1e:51:f6:67:c7:7e:a7:ca:ea:14:b5:50:e1:
88:b3:4d:fd:f5:ec:00:79:00:42:42:67:16:ef:fd:
0c:b9:7a:00:61:ad:ff:47:8e:8b:5c:d9:74:8e:fc:
92:1c:af:71:07:95:64:ff:60:7e:15:cf:84:57:e5:
84:fc:5d:77:00:d4:98:62:60:c2:0c:bd:5f:95:64:
26:13:30:dd:63:60:9d:5a:5b:ec:92:05:4b:54:59:
a8:ea:56:63:04:ad:9f:7a:8b:1f:d4:79:3a:a5:46:
5b:02:d7:8a:a8:1b:94:35:90:3c:f7:95:1d:a2:57:
50:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A1:A4:54:6D:CC:11:D2:27:9F:8F:BC:3C:6D:0A:A9:81:77:D0:92
X509v3 Authority Key Identifier:
keyid:F6:AF:43:39:74:DF:37:3B:70:AB:D7:6B:13:E1:C7:0C:77:5F:55:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9q9DOXTfNztwq9drE-HHDHdfVUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/gaGkVG3MEdInn4-8PG0KqYF30JI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f9caf0-2c2e-4897-8a3b-a26bc653b06b/1/9q9DOXTfNztwq9drE-HHDHdfVUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:3e80:401::/48
Signature Algorithm: sha256WithRSAEncryption
47:d5:8c:5b:23:e7:b6:50:57:a7:ef:c3:58:fd:36:ed:88:8c:
59:d5:c8:f3:e1:7d:9d:7d:06:99:18:88:67:f6:dc:c3:73:21:
f1:0a:94:98:b6:d2:a5:ac:5f:7e:d6:e2:8a:45:58:8f:6e:bc:
ad:74:1e:86:35:02:df:e0:a1:e5:13:8f:83:02:25:c9:87:ea:
aa:38:44:32:b1:f8:2b:60:ac:21:c3:6a:f7:32:08:81:c2:e6:
52:35:59:15:61:1b:89:76:10:58:77:2a:d4:b3:f9:67:be:a8:
ba:bb:d4:0c:0f:f0:3e:99:77:d1:3b:06:3a:d6:42:4f:99:8b:
e3:ea:cb:70:53:88:f0:47:fc:fd:7e:8c:06:de:bc:04:c7:a1:
ed:bc:13:62:af:72:2b:fc:3b:40:29:28:0a:15:54:5c:72:61:
6d:66:38:1d:5f:09:e1:be:3c:0e:68:6e:8e:9f:33:93:38:91:
1a:af:27:13:eb:27:f4:1d:1a:6d:de:30:1d:9f:31:75:13:77:
a9:f5:44:d9:2d:31:fe:4d:47:e3:0c:01:e7:df:2c:c9:54:e1:
2c:d5:1a:13:13:a4:aa:c5:f8:d0:bf:34:cd:0f:3c:00:a7:06:
c4:69:ae:4f:c2:1c:71:43:42:82:b5:12:aa:41:66:11:cb:56:
0c:03:2d:f6
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzKKhyUZuTp6l3bFsArB9qUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2YWY0MzM5NzRkZjM3M2I3MGFiZDc2YjEzZTFjNzBjNzc1
ZjU1NGIwHhcNMjQwMTAyMTIzMzI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MWExYTQ1NDZkY2MxMWQyMjc5ZjhmYmMzYzZkMGFhOTgxNzdkMDkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2l4saEBljE78e5aO7j52GaFkBlXK
3CRjmUX8vhTZ2SFRziklpzcx5rtioOnEj5EpBxGyufFDQyT3AZXQL008norFRKtE
+D4M26yBHd4tCpalrmCLqpHgiubm4+K8CajsSxe5ZK5gOreal2hD9+ogvqLKLZzN
S6ykpHl/RipcJHS54vm4vIbxNB5R9mfHfqfK6hS1UOGIs0399ewAeQBCQmcW7/0M
uXoAYa3/R46LXNl0jvySHK9xB5Vk/2B+Fc+EV+WE/F13ANSYYmDCDL1flWQmEzDd
Y2CdWlvskgVLVFmo6lZjBK2feosf1Hk6pUZbAteKqBuUNZA895UdoldQTwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIGhpFRtzBHSJ5+PvDxtCqmBd9CSMB8GA1UdIwQY
MBaAFPavQzl03zc7cKvXaxPhxwx3X1VLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOXE5RE9YVGZOenR3cTlkckUtSEhESGRmVlVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9mOWNhZjAtMmMyZS00ODk3LThhM2It
YTI2YmM2NTNiMDZiLzEvZ2FHa1ZHM01FZElubjQtOFBHMEtxWUYzMEpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC9mOWNhZjAtMmMyZS00ODk3LThhM2ItYTI2YmM2NTNiMDZi
LzEvOXE5RE9YVGZOenR3cTlkckUtSEhESGRmVlVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhI+gAQB
MA0GCSqGSIb3DQEBCwUAA4IBAQBH1YxbI+e2UFen78NY/TbtiIxZ1cjz4X2dfQaZ
GIhn9tzDcyHxCpSYttKlrF9+1uKKRViPbrytdB6GNQLf4KHlE4+DAiXJh+qqOEQy
sfgrYKwhw2r3MgiBwuZSNVkVYRuJdhBYdyrUs/lnvqi6u9QMD/A+mXfROwY61kJP
mYvj6stwU4jwR/z9fowG3rwEx6HtvBNir3Ir/DtAKSgKFVRccmFtZjgdXwnhvjwO
aG6OnzOTOJEarycT6yf0HRpt3jAdnzF1E3ep9UTZLTH+TUfjDAHn3yzJVOEs1RoT
E6SqxfjQvzTNDzwApwbEaa5PwhxxQ0KCtRKqQWYRy1YMAy32
-----END CERTIFICATE-----
Generated at Fri Jun 21 04:29:31 2024 by rpki-client on console-ams.rpki-client.org